Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D584A1F2AA7E11F0A8C95F7BDAE4EC9C.roa
File: D584A1F2AA7E11F0A8C95F7BDAE4EC9C.roa (raw, json)
Hash identifier: 4AZy/UJgQMSmW1ix1nrkhZ6dpqWc6TJKMv7E9V0R1vE=
Subject key identifier: AB:1F:DF:9A:D6:08:83:76:D0:EA:15:F8:96:AF:5F:03:5F:BF:8D:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A3EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D584A1F2AA7E11F0A8C95F7BDAE4EC9C.roa
Signing time: Thu 16 Oct 2025 10:56:58 +0000
ROA not before: Thu 16 Oct 2025 10:56:53 +0000
ROA not after: Tue 25 Nov 2025 10:56:53 +0000
asID: 203020
IP address blocks: 154.85.24.0/23 maxlen: 24
154.88.10.0/23 maxlen: 24
154.88.18.0/23 maxlen: 24
154.90.160.0/21 maxlen: 24
154.90.168.0/22 maxlen: 24
154.90.176.0/21 maxlen: 24
154.90.184.0/22 maxlen: 24
154.94.10.0/23 maxlen: 24
154.94.20.0/23 maxlen: 24
154.94.54.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107498 (0x1a3ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 10:56:53 2025 GMT
Not After : Nov 25 10:56:53 2025 GMT
Subject: CN=68f0cf7a-953b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:89:39:6f:20:8e:87:5b:38:4f:7c:cb:80:e0:
18:b6:c8:fe:c0:19:f2:a8:ac:2a:4e:27:ab:22:84:
39:7e:4a:8d:e8:21:5f:6b:1f:11:e1:41:7f:ac:89:
56:75:6d:e5:b2:9d:53:e6:65:7a:da:d4:be:a6:b7:
31:88:1d:7d:1d:e4:23:58:a1:05:43:c3:7f:ce:48:
91:f5:d1:4a:73:29:06:4f:a8:b2:cd:c1:e1:d4:38:
bd:9a:78:d2:d9:c3:27:75:7a:77:7f:ea:6d:8d:49:
c5:ba:c5:d7:3e:43:c5:90:65:a6:75:ba:33:57:cd:
64:28:a5:4d:44:b7:d3:1d:06:82:4f:69:a7:60:9c:
84:15:1d:26:c2:b9:e7:3b:49:d7:ca:47:06:18:7d:
67:ca:6d:30:d9:eb:76:ce:17:29:04:a0:f9:65:be:
7c:6e:a4:9e:c8:b4:89:cc:ca:05:49:b4:9b:d7:f2:
15:ad:dd:49:b2:d6:c8:2e:8a:f6:3d:ff:ab:44:83:
bd:e3:56:c9:54:89:fc:8a:91:7a:55:21:71:6e:a5:
d6:cb:54:aa:60:3f:74:a4:13:96:32:42:71:6c:3e:
c7:e3:0f:47:7c:6b:c2:18:61:f1:4d:14:ea:5c:13:
e5:47:8f:4b:0d:b8:c3:7f:bf:b4:2d:b2:51:76:d2:
77:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1F:DF:9A:D6:08:83:76:D0:EA:15:F8:96:AF:5F:03:5F:BF:8D:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D584A1F2AA7E11F0A8C95F7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.24.0/23
154.88.10.0/23
154.88.18.0/23
154.90.160.0-154.90.171.255
154.90.176.0-154.90.187.255
154.94.10.0/23
154.94.20.0/23
154.94.54.0/23
Signature Algorithm: sha256WithRSAEncryption
91:a2:e5:01:86:86:c9:d8:8f:4d:38:ce:45:a3:c7:7e:21:47:
d0:d7:54:d1:13:60:45:b1:78:94:6a:6f:f1:59:b9:84:c1:cd:
ac:0e:83:c3:84:a1:7d:8f:e2:15:e5:b0:a6:eb:a6:03:50:50:
8f:a3:41:ff:f0:a2:07:6c:43:30:69:14:5e:45:26:a9:bb:06:
1f:e1:7f:8a:2a:79:09:f0:f8:7a:8a:ec:73:a3:b9:3a:6d:2d:
92:6c:b2:ee:0e:fc:6f:7f:97:0b:6b:4b:74:c5:a9:f1:f2:22:
b5:32:58:d7:7a:14:0d:fe:19:1b:87:92:b2:87:a9:bd:55:f7:
0d:97:2d:4a:2a:c5:1b:1f:5d:b8:56:ac:29:de:b7:f0:dc:ba:
2a:2e:d3:10:97:d9:21:24:49:db:8d:39:d1:5e:cf:7d:59:65:
52:25:ef:d9:14:a1:2c:76:08:bf:0b:7e:73:6c:44:9a:db:1e:
0f:f8:79:1d:23:9f:74:9b:b1:30:63:9a:ea:91:38:cb:35:3c:
be:fe:e1:47:61:c4:60:e2:a6:e8:ef:7f:f3:75:51:d3:4e:5a:
12:91:7b:2d:94:c0:31:20:bf:2f:6d:bd:fb:f6:d8:e9:c0:d1:
3e:41:74:67:52:64:46:0f:35:4d:0c:a7:77:c7:33:88:ea:88:
ad:ac:1f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:55:49 2025 by rpki-client